Reflexive iris template

ABSTRACT

A system, method and program product for providing a reflexive data collection system. A system is provided that includes: a system for defining a set of environmental conditions; a device for automatically implementing the set of environmental conditions; a system for collecting biometric data under the set of environmental conditions; and a system for encoding the biometric data and the set of environmental conditions into a reflexive template.

CROSS-REFERENCE TO RELATED APPLICATIONS

This application is a divisional of currently pending U.S. patentapplication Ser. No. 12/535,025 filed on Aug. 4, 2009. The applicationidentified above is incorporated herein by reference in its entirety forall that it contains in order to provide continuity of disclosure.

FIELD OF THE INVENTION

This disclosure is related to verifying an identify of an individualusing biometrics, and more particularly to a system and method ofutilizing a reflexive iris template for capturing and verifying anidentity of an individual.

BACKGROUND OF THE INVENTION

Identity verification has numerous applications, including grantinglogin access to computer systems, granting physical access to buildingsand rooms, interfacing with banks, etc. Various approaches for verifyingidentity are known and commonly used, including the use of passwords,the use biometrics such as fingerprint and retinal imagery, etc.

Biometrics are particularly useful in many applications in light of thefact that an individual does not need to remember a password or thelike. Instead, unique physical, behavioral, physiological and orcognitive traits and characteristics can be utilized to identify andverify an individual. For example, every person has unique fingerprintsthat can be used to verify an identity with a high degree of certainty.

One of the drawbacks of biometrics however is that once a biometricimage or template of an individual is compromised, an imposter may beable to impersonate the individual. For instance, biometric data for anindividual may be encoded in a binary sequence, i.e., template. If thebinary sequence was obtained by a third party, the third party couldpotentially utilize the binary sequence to, e.g., gain access to acomputer system. Once compromised, the only way to ensure security forthe individual would be to change the encoding scheme of the entiresystem.

Accordingly, a need exists for a biometric identity verification systemthat addresses the drawbacks of the prior art.

SUMMARY OF THE INVENTION

The present invention relates to a solution in which biometric data ofan individual is combined with environmental data to provide a reflexivetemplate that can later be used to verify the individual. Because theenvironmental conditions under which the biometric data is collected canbe varied, the reflexive template can be readily canceled and a new onecan be readily created.

In one embodiment, there is a system for collecting reflexive biometricdata, comprising: a system for defining a set of environmentalconditions; a device for automatically implementing the set ofenvironmental conditions; a system for collecting biometric data underthe set of environmental conditions; and a system for encoding thebiometric data and the set of environmental conditions into a reflexivetemplate.

In a second embodiment, there is a reflexive data verification systemfor verifying an identify of an individual, comprising: a system forretrieving and decoding a reflexive template associated with theindividual to obtain at least one biometric data value and a set ofenvironmental conditions under which the at least one biometric datavalue was obtained; a device for implementing the set of environmentalconditions; a system for collecting at least one new biometric datavalue under the set of environmental conditions; a system for comparingthe at least one biometric data value with the at least one newbiometric data value to determine if a match exists; and a system foroutputting a verification result.

In a third embodiment, there is a method of collecting reflexivebiometric data, comprising: defining a set of environmental conditions;automatically implementing the set of environmental conditions;collecting biometric data under the set of environmental conditions; andencoding the biometric data and the set of environmental conditions intoa reflexive template.

In a fourth embodiment, there is a method for verifying an identify ofan individual, comprising: retrieving and decoding a reflexive templateassociated with the individual to obtain at least one biometric datavalue and a set of environmental conditions under which the at least onebiometric data value was obtained; implementing the set of environmentalconditions; collecting at least one new biometric data value under theset of environmental conditions; comparing the at least one biometricdata value with the at least one new biometric data value to determineif a match exists; and outputting a verification result.

In a fifth embodiment, there is a computer readable medium having aprogram product stored thereon, which when run by a computer system,collects reflexive biometric data and comprises: program code fordefining a set of environmental conditions; program code forimplementing the set of environmental conditions; program code forcausing a device to collect biometric data under the set ofenvironmental conditions; and program code for encoding the biometricdata and the set of environmental conditions into a reflexive template.

In a sixth embodiment, there is a computer readable medium having aprogram product stored thereon, which when run by a computer systemverifies an identify of an individual and comprises: program code forretrieving and decoding a reflexive template associated with theindividual to obtain at least one biometric data value and a set ofenvironmental conditions under which the at least one biometric datavalue was obtained; program code for implementing the set ofenvironmental conditions; program code for causing a device to collectat least one new biometric data value under the set of environmentalconditions; program code for comparing the at least one biometric datavalue with the at least one new biometric data value to determine if amatch exists; and program code for outputting a verification result.

The illustrative aspects of the present invention are designed to solvethe problems herein described and other problems not discussed.

BRIEF DESCRIPTION OF THE DRAWINGS

These and other features of this invention will be more readilyunderstood from the following detailed description of the variousaspects of the invention taken in conjunction with the accompanyingdrawings.

FIG. 1 depicts a reflexive data collection system and a reflexive dataverification system in accordance with an embodiment of the presentinvention.

FIG. 2 depicts a reflexive iris template in accordance with anembodiment of the present invention.

FIG. 3 depicts a flow diagram showing a process for collecting reflexivedata in accordance with an embodiment of the invention.

FIG. 4 depicts a flow diagram showing a process for verifying anidentity in accordance with an embodiment of the invention.

The drawings are merely schematic representations, not intended toportray specific parameters of the invention. The drawings are intendedto depict only typical embodiments of the invention, and thereforeshould not be considered as limiting the scope of the invention. In thedrawings, like numbering represents like elements.

DETAILED DESCRIPTION OF THE INVENTION

The present invention provides a hybrid biometric that is based on bothphysiological (i.e., at least one biometric value) and behavioralproperties (i.e., a set of environmental conditions under which thebiometric value was obtained). The hybrid biometric is created bydefining and causing a stimulation in an acquisition environment. Theresult, including both the collected physiological properties and theenvironmental conditions, are stored in a reflexive data template. Forexample, in the case of an iris, physiological properties such as shape,size and overlapping regions of the eye are collected under a definedset of controllable environmental conditions, such as light intensity,focal length temperature, etc. The results, including the environmentalconditions, are stored in a reflexive iris template. Verification isachieved by reproducing the same environmental conditions and collectinga new set of physiological properties. A matching process then comparescurrent physiological properties with stored physiological properties toverify the subject.

FIG. 1 depicts: (1) a reflexive data collection system 10 for collectingreflexive iris data from a subject's eye 22 and generating a reflexiveiris template 20, i.e., a “set-up mode”; and (2) a reflexive dataverification system 32 for verifying an identify of a subject bycomparing new reflexive iris data from an eye 44 with the previouslycollected reflexive iris data obtained from an associated reflexive iristemplate 20, i.e., a “verification mode.”

Reflexive data collection system 10 generally includes a stimulationsystem 12 for implementing a defined set of environmental conditions 18for the subject's eye 22; a data collection system 14 for collectingbiometric data under the environmental conditions 18; and an encodingsystem 16 for encoding the biometric data and environmental conditions18 in reflexive iris template 20.

Environmental conditions 18 may comprise any type of stimulus with acontrolled environment that can cause a change to the iris. The irisregulates the amount of the light that enters the eye and moresignificantly controls the depth of view and spherical aberration. As aresult, the iris is constantly shifting and overlapping in yieldingunique patterns given complex physiological, behavioral andenvironmental factors. Distinctive “iris folding” results from changesdue to dilation. Each new iris folding is unique. For instance, intenselight causes the pupil to contract; however, the pupil must expand for asharp image acquisition. As the range of view increases, the irisgenerally expands. Accordingly, intense light and varying ranges of viewcan be utilized to stimulate changes to the iris pattern.

Accordingly, any type of stimuli, such as a selected light intensity, atype of target object (e.g., large vs. small, detailed vs. simple, etc.)the selected placement of a target object (e.g., near or far, left orright, etc.), temperature, time (e.g., amount of time of exposure),displayed color, field of view (e.g., depth of field), etc., can be usedto effectuate a change to the iris shape.

Environmental conditions 18 may be static, e.g., have the subject view atarget object under X amount of light at Y distance; or dynamic, changethe environment N times over a course of M seconds and collect P imagesor measurements from the subject's eye 22. Stimulation system 12 mayimplement any reproducible environmental conditions 18 to stimulate areaction (or set of reactions) in the iris of the subject's eye 22.

A stimulation device 24, such as a light source, computer screen, heatelement, video display, etc., may be utilized to effectuate thestimulation, preferably within a controlled, reproducible environment.The stimulation may simply require the subject to stare at a point whilea stimulation occurs, or require interaction from the subject, e.g.,press a button when a displayed image is in focus, etc.

Data collection system 14 collects iris data from the eye 22 via acollection device 26. Iris data may comprise, e.g., image data, videodata, infrared data, scan data, etc. Collection device 26 may compriseany device for collecting physiological data from the eye 22, e.g., acamera, video camera, a motion or heat detection system, etc. Datacollection system 14 may also convert the collected iris data (such asimage data) into one or more measurement values, such as a featurevector, that describes physiological characteristics of the iris (e.g.,iris diameter, color, shape, overlapping regions, etc.).

In one illustrative embodiment, an iris measurement value may comprise apupil dilation ratio D_(r), given as:

$D_{r} = \frac{P_{radius}}{I_{radius}}$

where P_(radius) is the radius of the pupil and I_(radius) is the irisradius. In this case, the value D_(r) and the defined environmentalconditions 18, e.g., light intensity, time, induced field of view, etc.,are encoded by encoding system 16 into for example a byte code andoutputted as reflexive iris template 20. In another embodiment, themeasurement value may be an iris shape.

As noted, encoding system 16 encodes the biometric data (e.g., irismeasurement values) and environmental conditions 18 (i.e., stimulisettings) in a reflexive iris template 20. Reflexive iris template 20can be embedded/stored in a portable token, such as a smart card 28,which the subject can carry and use for identity verification at anyassociated reflexive data verification system 32. Alternatively,reflexive iris template 20 can be stored in a reflexive identitydatabase 30. The reflexive identity database 30 may for instance beimplemented anywhere on a network that can be accessed by both thereflexive data collection system 10 and the reflexive data verificationsystem 32. Moreover, reflexive identity database 30 may comprise anystructure for storing reflexive iris templates, e.g., a table, a dataobject, etc.

When a subject requires identity verification, the subject's reflexiveiris template 20 is presented to a template retrieval system 42 withinreflexive data verification system 32. In the case where the reflexiveiris template 20 is encoded in a smartcard 28, template retrieval system42 may comprise, e.g., a smartcard reader. In the case where thereflexive iris template 20 is stored in reflexive identity database 30,template retrieval system 42 may comprise a database interfaceconfigured to obtain the template 20 based on, e.g., an inputted username.

Once the reflexive iris template 20 for the subject is obtained, it isdecoded (and decrypted if necessary) by decoding system 40. Decodingsystem 40 extracts the iris data for the subject and the environmentalconditions 18 under which the iris data was collected. The environmentalconditions 18 are fed to the stimulation system 34, which re-creates thesame environment for collecting a new set of iris data from eye 44.Reflexive data verification system 32 includes a stimulation system 34,stimulation device 46, collection device 48, and data collection system36 that operate in a manner similar to stimulation system 12,stimulation device 24, collection device 26 and data collection system14 of the reflexive data collection system 10.

It is understood that the reflexive data collection system 10 andreflexive data verification system 32 may be integrated into a singledevice that performs both biometric collection and verification, or beimplemented as standalone systems. Accordingly, a “set-up mode” and a“verification mode” may be implemented in a single unit, or in separateunits.

Once the new iris data is collected by data collection system 36, it ispassed to matching system 38, which matches the new iris data with theiris data extracted from the reflexive iris template 20. Any type ofmatching scheme may be utilized. For example, a Hamming distance, withindependent environmental features in the form of a feature vector couldbe implemented. Furthermore, a Support Vector Machine could assist withmatching like iris templates. Verification results 44 are then produced,e.g., match or no match. Verification results 44 may in turn be used toeffectuate some logical or physical result, such as granting access to aserver, opening a door, providing access to account data, etc.

FIG. 2 depicts an illustrative example of a reflexive iris template 20that contains a byte code 58. Encoded in byte code 58 are a biometricmeasurement value and a set of environmental condition values. In thisexample, a first set of bits 50 provides an iris data value, e.g., apupil dilation ratio; a second set of bits 52 defines a setting for afirst environmental condition, e.g., a light intensity value; a thirdset of bits 54 defines a second environment variable, e.g., an amount oftime of exposure; and a fourth set of bits 56 defines a thirdenvironmental variable, e.g., a range of view value. It is understoodthat FIG. 2 depicts a simple example of a reflexive iris templates 20,and obvious variations and extensions fall within the scope of theinvention. For example, a series of biometric values obtained underdifferent conditions could be stored. In addition, byte code 58 could beencrypted using any known technology.

In a further embodiment, the reflexive iris template 20 could be updatedwith an additional set of results each time a verification proceduretakes place in order to provide a more robust set of biometricmeasurement values. In such a case, the reflexive iris template could beconfigured to hold a series of results that could be used for futurebiometric comparing operations.

It is understood that while the embodiments depicted in FIGS. 1 and 2are directed at collecting and verifying iris based biometric data, theinvention could apply to collecting and verifying any type of biometricdata. For instance, the embodiments could be used with voicerecognition, facial recognition, etc.

FIG. 3 depicts a flow diagram showing a method of collecting reflexivedata in an initial “set-up” mode for a subject individual. At step S1, aset of environmental conditions are defined. This may be done in anymanner, e.g., randomly by a collection device, inputted by a user, etc.At S2, biometric data is collected under the defined environmentalconditions. At S3, the biometric data and defined environmentalconditions are encoded into a reflexive template.

FIG. 4 depicts a flow diagram showing a method for verifying a subjectindividual, i.e., a “verification mode.” At S4, a reflexive templateassociated with the individual is obtained and decoded. Biometric dataand environmental condition settings are extracted from the reflexivetemplate. At S5, new biometric data is obtained from the individualunder the extracted environmental condition settings. At S6, the newbiometric data is compared with the extracted biometric data todetermine if a match exists. Any type of compare operation, includingthose typically used in biometric matching may be utilized. At S7, theverification results are output.

Referring again to FIG. 1, it is understood that the reflexive datacollection system 10 and reflexive data verification system 32 may eachbe implemented using any type of computing device (i.e., computersystem). Such a computing device generally includes a processor,input/output (I/O), memory, and bus. The processor may comprise a singleprocessing unit, or be distributed across one or more processing unitsin one or more locations, e.g., on a client and server. Memory maycomprise any known type of data storage, including magnetic media,optical media, random access memory (RAM), read-only memory (ROM), adata cache, a data object, etc. Moreover, memory may reside at a singlephysical location, comprising one or more types of data storage, or bedistributed across a plurality of physical systems in various forms.

I/O may comprise any system for exchanging information to/from anexternal resource. External devices/resources may comprise any knowntype of external device, including a monitor/display, speakers, storage,another computer system, a hand-held device, keyboard, mouse, voicerecognition system, speech output system, printer, facsimile, pager,etc. The bus provides a communication link between each of thecomponents in the computing device and likewise may comprise any knowntype of transmission link, including electrical, optical, wireless, etc.Although not shown, additional components, such as cache memory,communication systems, system software, etc., may be incorporated.

Access may be provided over a network such as the Internet, a local areanetwork (LAN), a wide area network (WAN), a virtual private network(VPN), etc. Communication could occur via a direct hardwired connection(e.g., serial port), or via an addressable connection that may utilizeany combination of wireline and/or wireless transmission methods.Moreover, conventional network connectivity, such as Token Ring,Ethernet, WiFi or other conventional communications standards could beused. Still yet, connectivity could be provided by conventional TCP/IPsockets-based protocol. In this instance, an Internet service providercould be used to establish interconnectivity. Further, as indicatedabove, communication could occur in a client-server or server-serverenvironment.

It should be appreciated that the teachings of the present inventioncould be offered as a business method on a subscription or fee basis.For example, a computer system comprising a reflexive data collectionsystem 10 and/or reflexive data verification system 32 could be created,maintained and/or deployed by a service provider that offers thefunctions described herein for customers. That is, a service providercould offer to deploy or provide the ability to collect and verifybiometric data as described above.

It is understood that in addition to being implemented as a system andmethod, the features may be provided as a program product stored on acomputer-readable medium, which when run, enables a computer system toprovide a reflexive data collection system 10 and/or reflexive dataverification system 32. To this extent, the computer-readable medium mayinclude program code, which implements the processes and systemsdescribed herein. It is understood that the term “computer-readablemedium” comprises one or more of any type of physical embodiment of theprogram code. In particular, the computer-readable medium can compriseprogram code embodied on one or more portable storage articles ofmanufacture (e.g., a compact disc, a magnetic disk, a tape, etc.), onone or more data storage portions of a computing device, such as memoryand/or a storage system.

As used herein, it is understood that the terms “program code” and“computer program code” are synonymous and mean any expression, in anylanguage, code or notation, of a set of instructions that cause acomputing device having an information processing capability to performa particular function either directly or after any combination of thefollowing: (a) conversion to another language, code or notation; (b)reproduction in a different material form; and/or (c) decompression. Tothis extent, program code can be embodied as one or more types ofprogram products, such as an application/software program, componentsoftware/a library of functions, an operating system, a basic I/Osystem/driver for a particular computing and/or I/O device, and thelike. Further, it is understood that terms such as “component” and“system” are synonymous as used herein and represent any combination ofhardware and/or software capable of performing some function(s).

The block diagrams in the figures illustrate the architecture,functionality, and operation of possible implementations of systems,methods and computer program products according to various embodimentsof the present invention. In this regard, each block in the blockdiagrams may represent a module, segment, or portion of code, whichcomprises one or more executable instructions for implementing thespecified logical function(s). It should also be noted that thefunctions noted in the blocks may occur out of the order noted in thefigures. For example, two blocks shown in succession may, in fact, berun substantially concurrently, or the blocks may sometimes be run inthe reverse order, depending upon the functionality involved. It willalso be noted that each block of the block diagrams can be implementedby special purpose hardware-based systems which perform the specifiedfunctions or acts, or combinations of special purpose hardware andcomputer instructions.

Although specific embodiments have been illustrated and describedherein, those of ordinary skill in the art appreciate that anyarrangement which is calculated to achieve the same purpose may besubstituted for the specific embodiments shown and that the inventionhas other applications in other environments. This application isintended to cover any adaptations or variations of the presentinvention. The following claims are in no way intended to limit thescope of the invention to the specific embodiments described herein.

1. A system for collecting reflexive biometric data, comprising: asystem for defining a set of environmental conditions; a device forautomatically implementing the set of environmental conditions; a systemfor collecting biometric data under the set of environmental conditions;and a system for encoding the biometric data and the set ofenvironmental conditions into a reflexive template.
 2. The system ofclaim 1, wherein the biometric data comprises measurement data collectedfrom an eye.
 3. The system of claim 2, wherein the measurement data isselected from a group consisting of: an iris shape and a pupil-to-irisdilation ration.
 4. The system of claim 2, wherein the set ofenvironmental conditions comprise a stimuli selected from a groupconsisting of: a light intensity setting, a time setting, a field ofview setting, a target image, a depth of field of a target image, acolor of a target image, and a temperature.
 5. The system of claim 4,wherein the stimuli changes over a period of time.
 6. The system ofclaim 1, wherein the reflexive template is stored in one of a portabletoken or a database.
 7. A method of collecting reflexive biometric data,comprising: defining a set of environmental conditions; automaticallyimplementing the set of environmental conditions; collecting biometricdata under the set of environmental conditions; and encoding thebiometric data and the set of environmental conditions into a reflexivetemplate.
 8. The method of claim 7, wherein the biometric data comprisesmeasurement data collected from an iris.
 9. The method of claim 8,wherein the set of environmental conditions comprise a stimuli selectedfrom a group consisting of: a light intensity setting, a time setting, afield of view setting, a target image, a depth of field of a targetimage, a color of a target image, and a temperature.
 10. The method ofclaim 9, wherein the stimuli changes over a period of time.
 11. Themethod of claim 7, wherein the reflexive template is stored in one of aportable token or a database.
 12. A computer readable medium having aprogram product stored thereon, which when run by a computer system,collects reflexive biometric data and comprises: program code fordefining a set of environmental conditions; program code forimplementing the set of environmental conditions; program code forcausing a device to collect biometric data under the set ofenvironmental conditions; and program code for encoding the biometricdata and the set of environmental conditions into a reflexive template.13. The computer readable medium of claim 12, wherein the biometric datacomprises measurement data collected from an iris.
 14. The computerreadable medium of claim 13, wherein the set of environmental conditionscomprise a stimuli selected from a group consisting of: a lightintensity setting, a time setting, a field of view setting, a targetimage, a depth of field of a target image, a color of a target image,and a temperature.
 15. The computer readable medium of claim 14, whereinthe stimuli changes over a period of time.
 16. The computer readablemedium of claim 12, wherein the reflexive template is stored in one of aportable token or a database.